Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

41 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.4 views

Astra Linux - уязвимость в chromium

Before version 104.0.5112.101, using “after free” in FedCM via Google Chrome allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS7.3AI score0.01529EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в chromium

The use of “after free” in FedCM within Google Chrome before version 122.0.6261.111 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.01333EPSS
Exploits1References2
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в chromium

Using “after free” in FedCM in Google Chrome before version 120.0.6099.109 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.00337EPSS
Exploits0References2
Redos
Redosadded 2026/05/20 12:0 a.m.5 views

ROS-20260520-73-0039

A vulnerability in the FedCM component of Google Chrome browser is related to post-release memory usage. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS6.2AI score0.00065EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2026/05/07 2:0 p.m.6 views

Chromium: CVE-2026-8013 Insufficient validation of untrusted input in FedCM

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.8AI score0.00049EPSS
Exploits0
EUVD
EUVDadded 2026/05/06 9:31 p.m.1 views

EUVD-2026-28129

Insufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00049EPSS
Exploits0References3
NVD
NVDadded 2026/05/06 7:16 p.m.2 views

CVE-2026-8013

Insufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00049EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/05/06 7:16 p.m.5 views

CVE-2026-8013

Insufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00049EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/06 6:13 p.m.3 views

CVE-2026-8013

Insufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00049EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/05/06 6:13 p.m.2 views

CVE-2026-8013

Insufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00049EPSS
Exploits0
CVE
CVEadded 2026/05/06 6:13 p.m.14 views

CVE-2026-8013

CVE-2026-8013 affects Google Chrome FedCM (Federated Credential Management) prior to 148.0.7778.96. The vulnerability is due to insufficient validation of untrusted input, enabling a remote attacker to leak cross-origin data via a crafted HTML page. Impact is described as cross-origin data leakag...

4.3CVSS5.8AI score0.00049EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/06 6:13 p.m.3 views

CVE-2026-8013

Insufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00049EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/05/05 12:0 a.m.4 views

PT-2026-38206

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description Insufficient validation of untrusted input in FedCM Federated Credential Management, an API that allows users to sign into websites using credentials from a third-party identity provide...

9.6CVSS5.8AI score0.00161EPSS
Exploits0References138
CNNVD
CNNVDadded 2026/05/05 12:0 a.m.6 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 had a vulnerability related to input validation. This vulnerability stemmed from insufficient trust-based input validation by FedCM, which could allow remote attackers to exploit the system by...

4.3CVSS5.8AI score0.00049EPSS
Exploits0References3
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.3 views

Astra Linux - уязвимость в chromium

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.4AI score0.00147EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linuxadded 2026/03/26 12:0 a.m.3 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2026:0097-1 Rating: important References: 1260376 Cross-References: CVE-2026-4673 CVE-2026-4674 CVE-2026-4675 CVE-2026-4676 CVE-2026-4677 CVE-2026-4678 CVE-2026-4679 CVE-2026-4680 Affected Products: openSUSE...

8.8CVSS6AI score0.00065EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/03/24 5:2 a.m.2 views

CVE-2026-4680

An use after free flaw was found in the FedCM component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=491869946...

8.8CVSS5.7AI score0.00065EPSS
Exploits0References5
EUVD
EUVDadded 2026/03/24 3:31 a.m.0 views

EUVD-2026-14688

Use after free in FedCM in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00065EPSS
Exploits0References3
NVD
NVDadded 2026/03/24 1:17 a.m.1 views

CVE-2026-4680

Use after free in FedCM in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00065EPSS
Exploits0References2
OSV
OSVadded 2026/03/24 1:17 a.m.1 views

DEBIAN-CVE-2026-4680

Use after free in FedCM in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00065EPSS
Exploits0References1
Rows per page
Query Builder